// SCAN REPORT

Mcp Salesforce

9 tools. 0 can modify or destroy data without limits.

Read-only server. Low risk, but rate limits prevent runaway API costs.

Last updated:

0 can modify or destroy data
9 read-only
9 tools total
// TOOL MAP
Read (9) Write / Execute (0) Destructive / Financial (0)
// WHAT CAN GO WRONG

Even read-only tools carry cost. An agent in a retry loop can make thousands of API calls per minute, exhausting rate limits and running up bills.

// RECOMMENDED RULES
Cap read operations
get_account:
  rules:
    - rate_limit: 60/minute

Controls API costs and prevents retry loops from exhausting upstream rate limits.

// ALL 9 MCP SALESFORCE TOOLS
READ 9 tools
Read get_account Read get_comprehensive_contact Read get_contact_activities Read get_opportunities Read get_strategic_contacts Read search_accounts Read search_contacts Read search_leads Read soql_query
// FAQ
Is the Mcp Salesforce MCP server safe to use without restrictions? +

The Mcp Salesforce server is primarily read-only with 9 read tools. While it cannot modify data, an agent in a retry loop can make thousands of API calls per minute, exhausting rate limits and running up costs. Rate limiting is still recommended.

How many tools does the Mcp Salesforce MCP server expose? +

9 tools across 1 categories: Read. 9 are read-only. 0 can modify, create, or delete data.

How do I add Intercept to my Mcp Salesforce setup? +

One line change. Instead of running the Mcp Salesforce server directly, prefix it with Intercept: intercept -c mcp-salesforce.yaml -- npx -y @@snokam/mcp-salesforce. Download a pre-built policy from policylayer.com/policies/mcp-salesforce and adjust the limits to match your use case.

Let agents act without letting them run wild.

Deterministic policy on every MCP tool call. Per-identity grants. Full audit log.

GET STARTED →
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.